Gdm (the GNOME Display Manager) is a highly configurable reimplementationof xdm, the X Display Manager. Gdm allows you to log into your system withthe X Window System running and supports running several different Xsessions on your local machine at the same time.

A flaw was found in the way Gdm listens on its unix domain socket. A localuser could crash a running X session by writing malicious data to Gdm'sunix domain socket. (CVE-2007-3381)

All users of gdm should upgrade to this updated package, which contains abackported patch that resolves this issue.

Red Hat would like to thank JLANTHEA for reporting this issue.

4. Solution:

Before applying this update, make sure that all previously-releasederrata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available athttp://kbase.redhat.com/faq/FAQ_58_10188